Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Logs

From: Mike Duncan <Mike.Duncan () noaa gov>
Date: Mon, 02 Jun 2008 09:00:23 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

You can set the logging facility for the application to be syslog and
then setup syslog to remotely log to a remote syslog server. You could
then use something like Splunk to view those logs via a searchable web
interface.

For example, with Apache (see
http://www.oreillynet.com/pub/a/sysadmin/2006/10/12/httpd-syslog.html)
you can set the ErrorLog directive like so...

ErrorLog syslog:local1

...which will send the logging to /var/log/messages (in most cases) and
if you have syslog setup to send logs to a remote log server (syslog as
well) you would see the log(s) there as well.

Mike Duncan
ISSO, Application Security Specialist
Government Contractor with STG, Inc.
NOAA :: National Climatic Data Center
151 Patton Ave.
Asheville, NC 28801-5001
mike.duncan () noaa gov
828.271.4289


Yousif () Vapt-Sec com wrote:

Is there applications or methods available that allow you to stream logs through other means instead of your set web 
applications like cPanel? cPanel offers to allow you to view your logs/requests but is there a way to stream those 
logs through another application or perhaps process WITHOUT running the program or process directly on the server; 
remotely.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes 
in Securing Web Applications  
Find out now! Get Webinar Recording and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIQ+7mnvIkv6fg9hYRAthHAJ4ufL1vb0O5b1VfYZs4FLGY7TQEBACfczzr
kq7J9ky+Z2Bq/wRDftcw6Cg=
=2JJu
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes 
in Securing Web Applications  
Find out now! Get Webinar Recording and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: